ramnit | f1d86b5cce43b2e57b924da96a4d225b822b6e6c00edcbe8c6e15b2cda01bfb8 | Triage

Submit
Reports

Overview

overview

Static

static

1

7e9efd6984...8.html

windows7-x64

7e9efd6984...8.html

windows10-2004-x64

1

Sharing

General

Target

7e9efd6984cd02d31646cc2a195b1fb4_JaffaCakes118
Size

184KB
Sample

240528-2dgbjsgb58
MD5

7e9efd6984cd02d31646cc2a195b1fb4
SHA1

35781b4fa12e5b6d788d51803f7909e4eb2edfe2
SHA256

f1d86b5cce43b2e57b924da96a4d225b822b6e6c00edcbe8c6e15b2cda01bfb8
SHA512

a35ac6ff8207f7b87a5deb5573dd20223c5ae75be71369a0bb921dac805b8476c37709f9b4f0762d1e4e7c834956ed8fc16ec5f5c8c9051b7591640c8bb07b91
SSDEEP

3072:ST7GjryfkMY+BES09JXAnyrZalI+Y5N86QwUdedbFilfO5YFis:ST7xsMYod+X3oI+Yn86/U9jFis

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

7e9efd6984cd02d31646cc2a195b1fb4_JaffaCakes118.html

Resource

win7-20240220-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

7e9efd6984cd02d31646cc2a195b1fb4_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  7e9efd6984cd02d31646cc2a195b1fb4_JaffaCakes118
- Size
  
  184KB
- MD5
  
  7e9efd6984cd02d31646cc2a195b1fb4
- SHA1
  
  35781b4fa12e5b6d788d51803f7909e4eb2edfe2
- SHA256
  
  f1d86b5cce43b2e57b924da96a4d225b822b6e6c00edcbe8c6e15b2cda01bfb8
- SHA512
  
  a35ac6ff8207f7b87a5deb5573dd20223c5ae75be71369a0bb921dac805b8476c37709f9b4f0762d1e4e7c834956ed8fc16ec5f5c8c9051b7591640c8bb07b91
- SSDEEP
  
  3072:ST7GjryfkMY+BES09JXAnyrZalI+Y5N86QwUdedbFilfO5YFis:ST7xsMYod+X3oI+Yn86/U9jFis
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy